Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1395


Vulnerability Score 7.5 7.5
CVE Id CVE-2006-1395
Last Modified 07 Mar 2011 09:32:59
Published 26 Mar 2006 06:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



SQL injection vulnerability in mb.cgi in Cholod MySQL Based Message Board allows remote attackers to execute arbitrary SQL commands via unspecified vectors in a showmessage action, possibly the username parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

Vulnerable Systems


  • Cholod Mysql Based Message Board


VUPEN - ADV-2006-1153

BID - 17224

XF - cholod-mb-sql-injection(25520)

SECUNIA - 19439

Last Updated: 27 May 2016 10:42:02